Lucene search
GoogleOSV:CVE-2024-6383HistoryJul 03, 2024 - 10:15 p.m.
CVE-2024-6383
2024-07-0322:15:00
Google
osv.dev
1
mongodb c driver
buffer overflow
memory corruption
libbson 1.27.1
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
AI Score
7.4
Confidence
High
The bson_string_append function in MongoDB C Driver may be vulnerable to a buffer overflow where the function might attempt to allocate too small of buffer and may lead to memory corruption of neighbouring heap memory. This issue affects libbson versions prior to 1.27.1
Related
vulnrichment
vulnrichment
ubuntucve
ubuntucve
CVE-2024-6383
2024-07-03 00:00:00
mongodb
mongodb
MongoDB C Driver bson_string_append may be vulnerable to a buffer overflow
2024-07-03 21:33:00
debiancve
debiancve
CVE-2024-6383
2024-07-03 22:15:03
cve
cve
CVE-2024-6383
2024-07-03 22:15:03
nvd
nvd
CVE-2024-6383
2024-07-03 22:15:03
cvelist
cvelist
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
AI Score
7.4
Confidence
High
Related for OSV:CVE-2024-6383